surname

https://upsch.one internal message service listed employee data. Login bypassed through insecure request logs containing POST request with username & password in plaintext. Sample link: Hidden content